Qualcomm ≫ Qca8337 Firmware

Memory corruption in Core Platform while printing the response buffer in log.

Memory Corruption in Core Platform while printing the response buffer in log.

Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.

Memory corruption while allocating memory in COmxApeDec module in Audio.

Transient DOS in Audio while remapping channel buffer in media codec decoding.

The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it.

Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.

Memory corruption in WLAN while running doDriverCmd for an unspecific command.

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.

Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.